Skip to content

Commit

Permalink
Add Cert Signature Algorithm to cert payload
Browse files Browse the repository at this point in the history
This field will be used to report what algorithm was used to
sign a certificate. Weak signature algorithms are considered
a vulnerability for remediation, so surfacing this value
is useful for reporting (and other) purposes.

refs GH-1044
  • Loading branch information
atc0005 committed Nov 16, 2024
1 parent 23bc388 commit 28a4522
Showing 1 changed file with 1 addition and 0 deletions.
1 change: 1 addition & 0 deletions cmd/check_cert/paypload.go
Original file line number Diff line number Diff line change
Expand Up @@ -227,6 +227,7 @@ func buildCertSummary(cfg *config.Config, validationResults certs.CertChainValid
ValidityPeriodDays: certExpMeta.validityPeriodDays,
Summary: expiresText,
Status: certStatus,
SignatureAlgorithm: origCert.SignatureAlgorithm.String(),
Type: certs.ChainPosition(origCert, certChain),
}

Expand Down

0 comments on commit 28a4522

Please sign in to comment.